We are identity Providers with Multi tenant Services. How can an Muti-Tenant IDP provider provide Office-365 Services to multiple Partners. Is there away O365 SAML audience can be configured from 'urn:federation:MicrosoftOnline' to something different value that is specific to Partner. Like 'urn:federation:MicrosoftOnline:service1', 'urn:federation:MicrosoftOnline:service2' etc.
So that the IDP aggregator can authenticate the user with respect to their instance of O365 and federate?
If the SAML Request Issuer is same value 'urn:federation:MicrosoftOnline' then IDP can not distinguish from One partner to the other.
Thanks
Raju